Basically, we have many times the number of people looking through source code in China than Microsoft does. This was supplied to the Chinese as a part of the conditions of trade in China. The result, well there have not been too many formal vulnerability releases by the Chinese government.

My company (canada) isn't listed but we did have a minor intrusion. The attacker managed to access an isolated computer and pull some encrypted documents. Fortunately none of our computers can see each other so the attacker was stuck with that one computer.